The Core Question & Recommendation
Can we securely migrate our sensitive data from NetApp to Google Workspace using the CloudM Migrator tool? This report analyzes the architecture and risks to provide a clear answer.
Confidence Statement: High
The CloudM Migrator tool provides a sufficiently secure architecture for this migration, **but only when using the Self-Hosted deployment model.**
The primary risks are not cryptographic flaws but relate to vendor operational security and specific configurations. By deploying the tool within our own infrastructure, we mitigate these risks and maintain full control over our data's security. The Hosted (SaaS) model is **not recommended** due to unverified vendor security.
The Critical Choice: Deployment Model
The security of this migration hinges on one decision: where the CloudM tool runs. The data flow and responsibility model change completely between the two options. Click below to visualize the data path for each model.
Your Data Center
(NetApp)
Migration Server
(Inside Your Network)
Google Workspace
Shared Responsibility Model
| Security Domain | Self-Hosted Model | Hosted (SaaS) Model |
|---|---|---|
| Physical Data Center Security | You | CloudM Vendor |
| Network Infrastructure Security | You | CloudM Vendor |
| Server OS & Patching | You | CloudM Vendor |
| CloudM App Configuration | You | CloudM Vendor |
| Data Processing Location | Your Infrastructure | CloudM's Infrastructure |
| Data-in-Transit (Source to Tool) | Your Local Network | Public Internet |
| Vendor Operational Security Risk | Mitigated | High (Unverified) |
Risk Analysis & Mitigation
Our analysis identified four primary risks. Click on each risk to understand the issue and the recommended mitigation strategy.
Security Architecture Deep Dive
For those who need the technical details, this section explores the core security mechanisms of the CloudM Migrator tool. Select a topic to learn more.
Recommended Action Plan
To proceed securely with the Self-Hosted model, the following pre-migration hardening steps are mandatory. Use this checklist to track your progress.